Last updated: May 8, 2026
This Data Protection Policy explains your rights regarding your personal data under the General Data Protection Regulation (GDPR) and other applicable data protection laws. It supplements our Privacy Policy and describes how we comply with data protection regulations.
Under GDPR and other data protection laws, you have the following rights regarding your personal data:
You have the right to request access to your personal data that we hold. You can request a copy of your data in a portable, machine-readable format. We will provide this information within 30 days of your request.
How to Exercise: Click "Download My Data" in your account settings or email [email protected] with your request.
You have the right to correct inaccurate or incomplete personal data. You can update your profile information at any time through your account settings.
How to Exercise: Update your profile information directly in your account settings, or email [email protected] with the corrections you'd like us to make.
You have the right to request deletion of your personal data, subject to certain exceptions. We will delete your data within 30 days of your request, unless we have a legal obligation to retain it.
Exceptions: We may retain your data if:
How to Exercise: Click "Delete My Account" in your account settings or email [email protected] with your deletion request.
You have the right to request that we limit how we use your personal data. We will restrict processing of your data while we verify your request or resolve a dispute about its accuracy.
How to Exercise: Email [email protected] with your request to restrict processing.
You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit that data to another organization. We will provide your data in JSON or CSV format within 30 days of your request.
How to Exercise: Click "Download My Data" in your account settings to receive your data in portable format.
You have the right to object to certain processing of your personal data, including:
How to Exercise: Click "Unsubscribe" in any marketing email, or email [email protected] with your objection.
If we process your data based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent will not affect the lawfulness of processing before withdrawal.
How to Exercise: Update your preferences in your account settings or email [email protected] to withdraw consent.
You have the right to lodge a complaint with your local data protection authority if you believe we have violated your data protection rights. You can find your local authority at edpb.ec.europa.eu.
We process your personal data based on one or more of the following legal bases:
We process your data with your explicit consent for purposes such as marketing communications and analytics. You can withdraw consent at any time.
We process your data to fulfill our contract with you, including booking dinners, processing payments, and providing customer support.
We process your data to comply with legal obligations, such as tax reporting, fraud prevention, and securities law compliance.
We process your data based on our legitimate interests, such as:
We retain your personal data for as long as necessary to provide our services and fulfill the purposes outlined in our Privacy Policy. Specific retention periods are:
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Until account deleted or 3 years of inactivity | Service provision |
| Payment Data | 7 years | Tax and accounting requirements |
| Analytics Data | 26 months | Google Analytics default retention |
| Email Logs | 90 days | Troubleshooting and support |
| Error Logs | 30 days | System monitoring and security |
| Backup Data | 30 days after deletion | Disaster recovery |
We share your personal data with the following third-party processors who assist us in providing our services:
| Processor | Purpose | Location | DPA |
|---|---|---|---|
| Stripe | Payment processing | USA | Yes |
| SendGrid | Email delivery | USA | Yes |
| Google Analytics | Analytics and usage tracking | USA | Yes |
| Slack | Notifications and alerts | USA | Yes |
All processors have signed Data Processing Agreements (DPAs) with us that ensure they comply with GDPR and other data protection regulations.
Your personal data may be transferred to, stored in, and processed in countries outside the European Union, including the United States. These countries may have data protection laws that differ from the EU.
Safeguards: We ensure adequate safeguards for international transfers through:
We implement industry-standard security measures to protect your personal data:
In the event of a data breach, we will notify affected individuals and relevant authorities as required by law, typically within 72 hours of discovering the breach.
Notification will include:
Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected information from a child under 18, we will delete such information promptly.
To exercise any of your data protection rights, you can:
Response Time: We will respond to your request within 30 days. If your request is complex, we may extend this period by up to 60 days.
We have appointed a Data Protection Officer (DPO) to oversee our data protection practices. You can contact our DPO at:
Data Protection Officer
Email: [email protected]
If you have questions about this Data Protection Policy or our data protection practices, please contact us at:
We may update this Data Protection Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of our services after such modifications constitutes your acceptance of the updated policy.
We use cookies to enhance your experience, analyze site traffic, and for marketing purposes. By clicking "Accept All," you consent to our use of cookies. You can customize your preferences or click "Reject All" to only use essential cookies.
Learn more about our cookie policy